CVE-2024-7050
https://notcve.org/view.php?id=CVE-2024-7050
Improper Authentication vulnerability in OpenText OpenText Directory Services may allow Multi-factor Authentication Bypass in particular scenarios.This issue affects OpenText Directory Services: 24.2. • https://support.opentext.com/csm?id=kb_article_view&sysparm_article=KB0821213 • CWE-287: Improper Authentication •
CVE-2024-4429 – Cross Site Request Forgery vulnerability in iManager
https://notcve.org/view.php?id=CVE-2024-4429
Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure. Se ha descubierto una vulnerabilidad de Cross-Site Request Forgery en OpenText™ iManager 3.2.6.0200. Esto podría dar lugar a la divulgación de información confidencial. • https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html • CWE-352: Cross-Site Request Forgery (CSRF) •
CVE-2024-3969 – XML External Entity injection vulnerability in iManager
https://notcve.org/view.php?id=CVE-2024-3969
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload Vulnerabilidad de inyección de entidad externa XML encontrada en OpenText™ iManager 3.2.6.0200. Esto podría conducir a la ejecución remota de código al analizar el payload XML que no es de confianza. • https://www.netiq.com/documentation/imanager-32/imanager326_patch3_hf1_releasenotes/data/imanager326_patch3_hf1_releasenotes.html • CWE-611: Improper Restriction of XML External Entity Reference •
CVE-2024-5201 – Dimensions RM - Privilege Escalation
https://notcve.org/view.php?id=CVE-2024-5201
Privilege Escalation in OpenText Dimensions RM allows an authenticated user to escalate there privilege to the privilege of another user via HTTP Request La escalada de privilegios en OpenText Dimensions RM permite a un usuario autenticado escalar su privilegio al privilegio de otro usuario a través de una solicitud HTTP. • https://portal.microfocus.com/s/article/KM000029985 • CWE-287: Improper Authentication •
CVE-2024-5202 – Dimensions RM - Arbitrary File Read
https://notcve.org/view.php?id=CVE-2024-5202
Arbitrary File Read in OpenText Dimensions RM allows authenticated users to read files stored on the server via webservices Lectura arbitraria de archivos en OpenText Dimensions RM permite a los usuarios autenticados leer archivos almacenados en el servidor a través de servicios web • https://portal.microfocus.com/s/article/KM000029988 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •